On Mon, 2011-03-07 at 10:57 +0800, Paul Wise wrote: > What is the use-case for this? i.e. why would one ever want to sign > every key in a keyring instead of signing specific keys that you have > verified belong to actual humans (like what caff from signing-party is > for).
In many key-signing parties I have seen, the organizers build and distribute a keyring of all participants. This utility allows you to iterate over every key in the keyring and choose whether or not to sign it (Depending obviously on whether you had verified that person's identity). This makes very little sense when viewed from the perspective of some arbitrary keyring, but when given a keyring from a signing party it makes more sense. See the IPT for the original occurrence of this question: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=573784 I hope this makes sense... I feel like I am explaining it a bit awkwardly... -- Luke Cycon <lcy...@gmail.com>
signature.asc
Description: This is a digitally signed message part
